$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: R4LtH3jJBQRc/JA8VM2Md+cRvxwtUnEJYyMZU92VTmA= Subject key identifier: CB:5A:B5:DC:7D:3F:74:2F:95:08:2E:F2:5D:2E:5C:CE:3E:14:53:CB Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 0166 Signing time: Sat 09 Aug 2025 04:20:50 +0000 Manifest this update: Sat 09 Aug 2025 04:20:50 +0000 Manifest next update: Sat 16 Aug 2025 04:20:50 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: BzvsITVbJZao8PPth7iUVm3x+/S6fLo1LXAEdLoGlUM=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Aug 9 04:20:50 2025 GMT Not After : Aug 16 04:20:50 2025 GMT Subject: CN=6896cca2-e370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:98:83:d4:ab:a4:66:7c:37:bc:0c:43:50:ae: e0:03:4f:84:05:b9:6b:f7:bf:b0:a6:fa:1d:38:3e: 19:1b:54:4d:43:94:af:0d:2e:e2:50:91:a9:48:03: 08:b4:e0:fe:2f:94:fa:6c:09:62:4e:99:ea:59:f9: 89:cf:a2:6a:99:00:c2:f7:98:b9:21:96:75:e2:80: 98:56:98:12:e0:4c:65:c1:ee:bb:58:f6:07:07:0d: 4e:25:63:25:21:25:9d:1d:36:f1:f7:49:45:23:76: de:e8:8f:93:bf:7d:43:be:de:d5:4c:be:0c:53:a8: 11:2d:8d:b6:a4:99:91:91:6e:72:5c:a5:8c:6f:00: bc:27:ee:37:59:18:05:14:5e:10:94:fc:df:62:13: 11:6c:ec:5c:ef:6d:b2:e5:bd:b1:6b:50:56:19:7c: ca:b7:00:e2:e7:6f:a4:0f:dd:48:1e:d0:9b:1f:de: d5:97:75:fc:74:60:6f:64:9b:04:92:ea:ef:9b:cc: 3f:ac:58:30:09:b0:3f:78:04:6d:dd:23:66:06:35: 86:df:d8:4b:8d:95:e6:50:48:42:0e:34:90:5a:e7: 20:23:87:c8:36:a9:10:86:16:56:85:4b:53:e8:d4: 41:53:c7:9f:8e:22:b4:f9:f6:18:21:1f:f3:0e:66: 2d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5A:B5:DC:7D:3F:74:2F:95:08:2E:F2:5D:2E:5C:CE:3E:14:53:CB X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:d0:5c:ab:e4:c2:c8:63:a2:5b:fd:c8:be:e3:ab:d8:fd:b9: 37:57:6e:77:e9:4e:09:a1:49:60:10:4f:6f:5f:7f:08:89:e1: 2c:ac:6f:0c:1c:6b:27:ed:32:90:9f:a3:2b:13:e8:11:98:ce: e2:49:2f:d5:ce:e9:8c:dc:b4:ac:a2:a0:2c:e6:ce:ba:4c:77: f9:e8:24:80:2a:09:87:70:11:c4:cc:50:ca:31:dd:5c:12:12: a8:f3:b4:bd:6c:d1:db:7a:33:79:99:b2:46:39:09:f3:fd:52: 83:ff:ec:70:a9:a5:74:a0:30:81:e4:94:16:cd:ee:63:bf:45: 00:96:c0:64:fc:e3:e0:32:62:4a:1c:d7:97:90:ab:97:f1:db: 07:ac:6f:48:e7:ae:9f:cf:c9:64:ee:30:46:d9:57:b6:92:d8: 8a:66:fd:4f:83:23:4f:04:17:10:57:d2:38:46:81:68:5f:71: b4:f0:7d:a8:38:22:00:2d:f6:c9:59:3b:9d:a2:75:5c:6a:06: a6:56:6e:8a:c9:eb:ad:c9:e8:5e:a1:fe:19:d3:3f:46:33:e1: 3a:01:00:f5:cc:2d:ee:e5:83:82:53:e9:6e:a4:f1:9d:ff:a5: ce:a6:25:9c:b5:80:13:cc:62:78:8b:2d:74:3b:52:86:5d:b2: f4:db:d8:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUwODA5MDQyMDUwWhcNMjUwODE2MDQyMDUwWjAYMRYwFAYD VQQDEw02ODk2Y2NhMi1lMzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2piD1KukZnw3vAxDUK7gA0+EBblr97+wpvodOD4ZG1RNQ5SvDS7iUJGpSAMI tOD+L5T6bAliTpnqWfmJz6JqmQDC95i5IZZ14oCYVpgS4Exlwe67WPYHBw1OJWMl ISWdHTbx90lFI3be6I+Tv31Dvt7VTL4MU6gRLY22pJmRkW5yXKWMbwC8J+43WRgF FF4QlPzfYhMRbOxc722y5b2xa1BWGXzKtwDi52+kD91IHtCbH97Vl3X8dGBvZJsE kurvm8w/rFgwCbA/eARt3SNmBjWG39hLjZXmUEhCDjSQWucgI4fINqkQhhZWhUtT 6NRBU8efjiK0+fYYIR/zDmYt7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtatdx9 P3QvlQgu8l0uXM4+FFPLMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD0Fyr5MLIY6Jb/ci+46vY/bk3V2536U4JoUlgEE9vX38IieEsrG8M HGsn7TKQn6MrE+gRmM7iSS/VzumM3LSsoqAs5s66THf56CSAKgmHcBHEzFDKMd1c EhKo87S9bNHbejN5mbJGOQnz/VKD/+xwqaV0oDCB5JQWze5jv0UAlsBk/OPgMmJK HNeXkKuX8dsHrG9I566fz8lk7jBG2Ve2ktiKZv1PgyNPBBcQV9I4RoFoX3G08H2o OCIALfbJWTudonVcagamVm6Kyeutyeheof4Z0z9GM+E6AQD1zC3u5YOCU+lupPGd /6XOpiWctYATzGJ4iy10O1KGXbL029gC -----END CERTIFICATE-----Generated at Sat Aug 9 23:20:10 2025 by rpki-client